GitHub Advisory Database

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

GitHub reviewed advisories

All reviewed 20,740
Composer 4,239
Erlang 31
GitHub Actions 21
Go 2,007
Maven 5,196
npm 3,716
NuGet 662
pip 3,388
Pub 11
RubyGems 885
Rust 851
Swift 36

Unreviewed advisories

All unreviewed 235,925

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Filter advisories

GitHub reviewed advisories

Unreviewed advisories

All unreviewed

5,000+

415 advisories

Filter by severity

Sort by

Least recently updated

IBM QRadar 7.3.0 to 7.3.3 Patch 2 could allow an authenticated user to access data and perform... Moderate Unreviewed

CVE-2020-4274 was published May 24, 2022

IBM QRadar 7.3.0 to 7.3.3 Patch 2 could allow a local user to gain escalated privileges due to... Moderate Unreviewed

CVE-2020-4270 was published May 24, 2022

Insufficient validation of untrusted input in clipboard in Google Chrome prior to 81.0.4044.92... Moderate Unreviewed

CVE-2020-6456 was published May 24, 2022

Insufficient policy enforcement in trusted types in Google Chrome prior to 81.0.4044.92 allowed a... Moderate Unreviewed

CVE-2020-6446 was published May 24, 2022

Insufficient policy enforcement in trusted types in Google Chrome prior to 81.0.4044.92 allowed a... Moderate Unreviewed

CVE-2020-6445 was published May 24, 2022

Insufficient policy enforcement in navigations in Google Chrome prior to 81.0.4044.92 allowed a... Moderate Unreviewed

CVE-2020-6439 was published May 24, 2022

Insufficient policy enforcement in omnibox in Google Chrome prior to 81.0.4044.92 allowed a... Moderate Unreviewed

CVE-2020-6441 was published May 24, 2022

Insufficient policy enforcement in full screen in Google Chrome prior to 81.0.4044.92 allowed a... Moderate Unreviewed

CVE-2020-6431 was published May 24, 2022

Improper input validation in Druva inSync Client 6.5.0 allows a local, authenticated attacker to... Moderate Unreviewed

CVE-2019-4001 was published May 24, 2022

Incorrect default permissions in the installer for Intel(R) Graphics Drivers before versions 15... Moderate Unreviewed

CVE-2020-0508 was published May 24, 2022

In setPhonebookAccessPermission of AdapterService.java, there is a possible disclosure of user... Moderate Unreviewed

CVE-2020-0023 was published May 24, 2022

Comment properties in Atlassian Jira Server and Data Center before version 7.13.12, from 8.0.0... Moderate Unreviewed

CVE-2019-20106 was published May 24, 2022

An Incorrect Default Permissions vulnerability in the BDLDaemon component of Bitdefender AV for... Moderate Unreviewed

CVE-2019-17103 was published May 24, 2022

Jenkins WebSphere Deployer Plugin missing permission check Moderate

CVE-2019-16559 was published for org.jenkins-ci.plugins:websphere-deployer (Maven) May 24, 2022

Missing permission check in Jenkins Build Failure Analyzer Plugin Moderate

CVE-2019-16554 was published for com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer (Maven) May 24, 2022

Missing permission check in Jenkins Gerrit Trigger Plugin Moderate

CVE-2019-16552 was published for com.sonyericsson.hudson.plugins.gerrit:gerrit-trigger (Maven) May 24, 2022

Scanguard through 2019-11-12 on Windows has Insecure Permissions for the installation directory,... Moderate Unreviewed

CVE-2019-18895 was published May 24, 2022

A vulnerability in the HTTP traffic filtering component of Cisco Firepower Threat Defense... Moderate Unreviewed

CVE-2019-1982 was published May 24, 2022

The Symantec SONAR component, prior to 12.0.2, may be susceptible to a tamper protection bypass... Moderate Unreviewed

CVE-2019-12752 was published May 24, 2022

In JetBrains YouTrack before 2019.2.55152, removing tags from the issues list without the... Moderate Unreviewed

CVE-2019-18369 was published May 24, 2022

In JetBrains TeamCity before 2019.1.2, a non-destructive operation could be performed by a user... Moderate Unreviewed

CVE-2019-18367 was published May 24, 2022

In JetBrains TeamCity before 2019.1.2, secure values could be exposed to users with the "View... Moderate Unreviewed

CVE-2019-18366 was published May 24, 2022

An issue was discovered on Mitsubishi Electric ME-RTU devices through 2.02 and INEA ME-RTU... Moderate Unreviewed

CVE-2019-14925 was published May 24, 2022

Jenkins Libvirt Slaves Plugin vlnerable to Incorrect Default Permissions Moderate

CVE-2019-10472 was published for org.jenkins-ci.plugins:libvirt-slave (Maven) May 24, 2022

Jenkins Global Post Script Plugin missing permission check Moderate

CVE-2019-10474 was published for org.jenkins-ci.plugins:global-post-script (Maven) May 24, 2022

Previous 1 2 … 11 12 13 14 15 16 17 Next

ProTip! Advisories are also available from the GraphQL API

CC-BY-4.0 License

Language support

About GitHub Advisory Database

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

GitHub Advisory Database

GitHub reviewed advisories

Unreviewed advisories

415 advisories